$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: De3JOJhp7KI5Dt43GirdEGhZRz+JUmd2CoVf77uXoc0= Subject key identifier: 56:A3:FD:E5:EC:A6:76:7E:DA:EF:92:90:B1:F6:C5:11:41:B2:CB:F6 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 0322FDAB140950AF315275DE37230F5096E337C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 02C5 Signing time: Mon 30 Jun 2025 16:00:50 +0000 Manifest this update: Mon 30 Jun 2025 15:55:50 +0000 Manifest next update: Thu 03 Jul 2025 23:14:50 +0000 Files and hashes: 1: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: +t40M702VFWJpOgJRkFuplSndiJmUCoSc6okBYwiNSY=) 2: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: Sr5rxwxyX//B5EAQxEl5R5AYvEEW7vDFWvwM/NlIUq4=) 3: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: b9cTLdPx1advBlrGLW3rrHvpWg4NzQO2o4a7BH4O7yE=) 4: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: YAl9IH945cB6nzFZ+Qtu95xtcvqOant2/UNUilOSLzk=) 5: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: ejo3/L+3kmLyjnvdSLMOsbUtjtQhrjGsr2lCCkclPu4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 23:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:22:fd:ab:14:09:50:af:31:52:75:de:37:23:0f:50:96:e3:37:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Jun 30 15:55:50 2025 GMT Not After : Jul 3 23:14:50 2025 GMT Subject: CN=56A3FDE5ECA6767EDAEF9290B1F6C51141B2CBF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b9:8b:de:df:97:7a:bc:ba:0d:01:eb:98:a3: 6f:1c:0b:f8:91:c8:5b:e4:08:86:fc:09:b9:85:2c: c7:da:dc:dc:7a:71:3b:4b:19:ab:f7:f5:f5:d8:9a: 2f:f0:38:0f:59:08:16:8b:84:e3:8b:9e:c4:25:39: b7:81:b3:29:18:ff:39:20:5a:3a:77:af:03:1e:ee: e0:93:b8:6c:c6:8b:fc:6d:1a:b5:6d:af:c1:ae:02: 53:4a:db:b5:8a:86:bf:11:02:8d:44:9a:aa:9a:a4: 66:cb:d2:03:61:17:f0:01:71:b7:bd:96:95:00:a4: bc:b1:f0:85:d4:4b:7c:74:3f:7b:c0:49:6d:75:65: 1c:a9:df:18:13:dc:a6:47:2d:bc:5b:82:26:0a:0b: ee:99:af:d2:79:97:cd:e9:3d:26:0b:a7:a7:f2:99: 83:0f:40:d7:b6:c0:8b:a8:cf:66:62:89:41:14:eb: e2:be:97:1e:3e:6d:b1:a5:81:26:ed:e3:7f:92:a9: 88:ed:cf:89:10:cf:90:e5:2c:34:4c:08:23:98:40: e5:79:30:42:81:d7:84:cb:c3:0e:d7:94:5f:46:99: cf:a4:1c:01:8c:f9:83:a4:93:f0:43:62:15:04:f0: 14:89:bd:7f:4f:65:ee:73:9c:9e:3f:25:b2:04:69: d8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A3:FD:E5:EC:A6:76:7E:DA:EF:92:90:B1:F6:C5:11:41:B2:CB:F6 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:d9:34:b1:90:1e:c5:c7:e5:24:42:bd:0a:93:e9:27:de:01: 25:98:ef:87:55:cc:e8:21:5b:7d:4d:9f:72:51:94:2c:3b:3a: 7f:41:66:fd:47:fd:c5:dd:98:c2:e1:2e:6a:95:db:46:8c:c2: b9:1a:87:e6:2f:00:26:ef:51:4b:19:14:e9:69:83:7c:7c:d2: 35:33:1b:ac:00:9b:b7:69:c3:36:57:69:f0:6d:88:78:9f:dc: 01:51:34:33:d5:a2:aa:6c:88:65:ec:5c:cc:22:95:07:51:eb: e8:dd:5d:c0:96:a5:b9:79:d9:bc:3f:9c:a1:52:3c:dd:e0:e3: 4e:47:2f:7f:20:31:28:1f:4a:ee:70:c3:53:6a:b2:cf:23:78: 08:0a:a0:0b:76:5c:6b:ca:eb:24:26:9e:54:17:79:08:cd:cf: 1e:8d:6a:a4:97:8c:d6:b5:a6:f7:cb:39:80:5b:41:08:9f:b2: 83:44:ff:90:2a:5e:17:b4:e8:b5:3c:df:f5:f3:2d:12:5d:f8: 66:5d:ed:7f:79:09:ff:e7:5c:ce:13:c9:1e:41:85:db:19:c8: eb:25:17:9a:e7:f7:94:04:c0:f9:85:95:66:a3:43:6d:5a:c5: 8b:96:7c:a9:44:3f:36:b4:43:eb:6a:f5:43:fe:97:dd:f4:8f: 1a:43:83:28 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAyL9qxQJUK8xUnXeNyMPUJbjN8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA2MzAxNTU1NTBaFw0yNTA3MDMyMzE0NTBaMDMxMTAvBgNV BAMTKDU2QTNGREU1RUNBNjc2N0VEQUVGOTI5MEIxRjZDNTExNDFCMkNCRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3uYve35d6vLoNAeuYo28cC/iR yFvkCIb8CbmFLMfa3Nx6cTtLGav39fXYmi/wOA9ZCBaLhOOLnsQlObeBsykY/zkg Wjp3rwMe7uCTuGzGi/xtGrVtr8GuAlNK27WKhr8RAo1EmqqapGbL0gNhF/ABcbe9 lpUApLyx8IXUS3x0P3vASW11ZRyp3xgT3KZHLbxbgiYKC+6Zr9J5l83pPSYLp6fy mYMPQNe2wIuoz2ZiiUEU6+K+lx4+bbGlgSbt43+SqYjtz4kQz5DlLDRMCCOYQOV5 MEKB14TLww7XlF9Gmc+kHAGM+YOkk/BDYhUE8BSJvX9PZe5znJ4/JbIEadifAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVqP95eymdn7a75KQsfbFEUGyy/YwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGjZNLGQHsXH5SRCvQqT6SfeASWY74dVzOgh W31Nn3JRlCw7On9BZv1H/cXdmMLhLmqV20aMwrkah+YvACbvUUsZFOlpg3x80jUz G6wAm7dpwzZXafBtiHif3AFRNDPVoqpsiGXsXMwilQdR6+jdXcCWpbl52bw/nKFS PN3g405HL38gMSgfSu5ww1Nqss8jeAgKoAt2XGvK6yQmnlQXeQjNzx6NaqSXjNa1 pvfLOYBbQQifsoNE/5AqXhe06LU83/XzLRJd+GZd7X95Cf/nXM4TyR5BhdsZyOsl F5rn95QEwPmFlWajQ21axYuWfKlEPza0Q+tq9UP+l930jxpDgyg= -----END CERTIFICATE-----Generated at Tue Jul 1 00:28:13 2025 by rpki-client